SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Adobe SVG Viewer Vendors:   Adobe Systems Incorporated
Adobe SVG Viewer 'NPSVG3.dll' 'src' Property Lets Remote Users Determine if Files Exist on the Target System
SecurityTracker Alert ID:  1013890
SecurityTracker URL:  http://securitytracker.com/id/1013890
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  May 5 2005
Impact:   Disclosure of system information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): 3.x; prior to 3.0.3
Description:   A vulnerability was reported in Adobe SVG Viewer. A remote user can determine whether specified files exist on the target user's system.

A remote user can set the 'src' property on the 'NPSVG3.dll' ActiveX control to a file on the local system to determine if the file exists or not. If the file exists, the web page will stop loading. If the file does not exist, the web page will continue to load.

A remote user can create Javascript to test for these different conditions to determine if specified files exist on the target system.

A demonstration exploit is available at:

http://www.hyperdose.com/exploits/AdobeSVG.html

Robert Fly from Hyperdose Security reported this vulnerability.

Impact:   A remote user can determine whether specified files exist on the target user's system.
Solution:   The vendor has issued a fixed version (3.0.3), available at:

http://www.adobe.com/svg/viewer/install/mainframed.html

Vendor URL:  www.adobe.com/svg/ (Links to External Site)
Cause:   State error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC